Usernames and passwords are the root cause of 81% of data breaches. So, stop using them.

Usernames and passwords only provide an illusion of protection, and increasing their complexity perpetuates the problem by frustrating users and service providers without improving security. With WWPass’s multi-factor authentication (MFA) solution, you can say goodbye to lost time, resources, data, privacy, financial losses, and damage to reputations and lives.

WWPass provides users with a single secure electronic identity that allows access to many websites, applications and other systems. It’s easy to combine with biometrics and PINs if you require additional verification factors, and users can revoke and securely restore lost credentials.

Password-less authentication

Get a more secure way to log in to web applications from e-commerce sites to enterprise systems to SaaS applications.

One PassKey, many accounts

One secure electronic ID, or PassKey, logs users into any of their online accounts.

One PassKey, many forms

Choose whichever PassKey is most convenient for your business:

Smartphone

With the PassKey app for Android and iOS devices, you turn users’ smartphones into secure keys that replaces usernames and passwords.

Smartcard

The PassKey Smartcard is a versatile option that can be used simply as a security token or for an all-purpose access ID card.

Smartstick

Use the PassKey USB/NFC dongle, a security token that logs you in to WWPass-supported services in just one easy step.

How it works

The user presents a PassKey to log in to your app or website.

WWPass mutually authenticates both your app or website and the user’s PassKey, and obtains their unique identifiers, which are used to create a pointer to a set of application-specific data containers. These data containers are used to store the user’s identity and sensitive application-specific information.

WWPass sends the information stored in the data containers to your app or website via a secure channel.

Your app or website verifies the information received and logs in the user. The user’s identity is unintelligible to attackers, and is never disclosed to WWPass itself.

If a PassKey is lost or stolen, it can be disabled and restored through our recovery process to keep all linked accounts intact.